KrCERT warned that a file-upload vulnerability in NetID ClouDoc could allow attackers to place malicious files and execute malware on affected systems. Organizations using ClouDoc should update to version 4.1 or later through NetID and inspect the \plusdrive\web path for suspicious files, preserving evidence and reporting incidents before deletion. The advisory also points smaller organizations to KrCERT server-check and web-shell scanning services, so its main value is concrete patching and compromise-inspection guidance.